Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1091 5.7 警告
Adjacent 		nuxt nuxt/webpack-builder
nuxt/rspack-builder 		Nuxtのnuxt/rspack-builder等の複数製品における危険なメソッドや機能の公開に関する脆弱性 CWE-749
危険なメソッドや機能の公開 		CVE-2026-49993 2026-06-16 13:39 2026-06-12 Show GitHub Exploit DB Packet Storm
1092 9.8 緊急
Network 		jmespath project jmespath JMESPathにおける複数の脆弱性 CWE-116
CWE-20
CWE-94
CVE-2026-54133 2026-06-16 13:39 2026-06-12 Show GitHub Exploit DB Packet Storm
1093 5.5 警告
Local 		- アップルのmacOSにおけるアクセス制御に関する脆弱性 CWE-284
不適切なアクセス制御 		CVE-2025-24165 2026-06-16 13:39 2026-06-11 Show GitHub Exploit DB Packet Storm
1094 5.5 警告
Local 		- アップルのmacOSにおけるUNIX Symbolic Link のフォローに関する脆弱性 CWE-61
UNIX Symbolic Link のフォロー 		CVE-2025-43278 2026-06-16 13:39 2026-06-11 Show GitHub Exploit DB Packet Storm
1095 5.5 警告
Local 		- アップルのmacOSにおけるログファイルからの情報漏えいに関する脆弱性 CWE-532
ログファイルからの情報漏えい 		CVE-2025-46313 2026-06-16 13:39 2026-06-11 Show GitHub Exploit DB Packet Storm
1096 7.2 重要
Network 		QNAP Systems QuTS hero QNAP SystemsのQuTS heroにおけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-62850 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
1097 7.2 重要
Network 		QNAP Systems QuTS hero
QNAP QTS 		QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-66273 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
1098 7.2 重要
Network 		QNAP Systems QuTS hero
QNAP QTS 		QNAP SystemsのQNAP QTS等の複数製品におけるOS コマンドインジェクションの脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2025-66279 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
1099 7.2 重要
Network 		QNAP Systems QuTS hero
QNAP QTS 		QNAP SystemsのQNAP QTS等の複数製品における複数の脆弱性 CWE-121
CWE-190
CVE-2025-66280 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
1100 7.2 重要
Network 		QNAP Systems QuTS hero
QNAP QTS 		QNAP SystemsのQNAP QTS等の複数製品におけるNULL ポインタデリファレンスに関する脆弱性 CWE-476
NULL ポインタデリファレンス 		CVE-2025-66281 2026-06-16 13:39 2026-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254551 4.6 MEDIUM
Physics 		whatsapp whatsapp Facebook WhatsApp Messenger before 2.16.323 for Android uses the SD card for cleartext storage of files (Audio, Documents, Images, Video, and Voice Notes) associated with a chat, even after that chat… CWE-311
Missing Encryption of Sensitive Data 		CVE-2017-8769 2024-11-21 12:34 2017-05-18 Show GitHub Exploit DB Packet Storm
254552 9.8 CRITICAL
Network 		joomla joomla\! SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2017-8917 2024-11-21 12:34 2017-05-18 Show GitHub Exploit DB Packet Storm
254553 7.8 HIGH
Local 		smb4k_project
debian 		smb4k
debian_linux 		smb4k before 2.0.1 allows local users to gain root privileges by leveraging failure to verify arguments to the mount helper DBUS service. CWE-20
 Improper Input Validation  		CVE-2017-8849 2024-11-21 12:34 2017-05-17 Show GitHub Exploit DB Packet Storm
254554 7.8 HIGH
Local 		kde kauth
kdelibs 		KDE kdelibs before 4.14.32 and KAuth before 5.34 allow local users to gain root privileges by spoofing a callerID and leveraging a privileged helper app. CWE-290
 Authentication Bypass by Spoofing 		CVE-2017-8422 2024-11-21 12:34 2017-05-17 Show GitHub Exploit DB Packet Storm
254555 7.8 HIGH
Local 		cgmlarson vizex_reader Buffer overflow in Larson VizEx Reader 9.7.5 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .tif file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8927 2024-11-21 12:34 2017-05-16 Show GitHub Exploit DB Packet Storm
254556 7.8 HIGH
Local 		halliburton logview_pro Buffer overflow in Halliburton LogView Pro 10.0.1 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .tif file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-8926 2024-11-21 12:34 2017-05-16 Show GitHub Exploit DB Packet Storm
254557 8.8 HIGH
Network 		mailcow mailcow\ mailcow 0.14, as used in "mailcow: dockerized" and other products, has CSRF. CWE-352
 Origin Validation Error 		CVE-2017-8928 2024-11-21 12:34 2017-05-15 Show GitHub Exploit DB Packet Storm
254558 5.5 MEDIUM
Local 		linux
debian 		linux_kernel
debian_linux 		The omninet_open function in drivers/usb/serial/omninet.c in the Linux kernel before 4.10.4 allows local users to cause a denial of service (tty exhaustion) by leveraging reference count mishandling. CWE-404
 Improper Resource Shutdown or Release 		CVE-2017-8925 2024-11-21 12:34 2017-05-13 Show GitHub Exploit DB Packet Storm
254559 4.6 MEDIUM
Physics 		linux
debian 		linux_kernel
debian_linux 		The edge_bulk_in_callback function in drivers/usb/serial/io_ti.c in the Linux kernel before 4.10.4 allows local users to obtain sensitive information (in the dmesg ringbuffer and syslog) from uniniti… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2017-8924 2024-11-21 12:34 2017-05-13 Show GitHub Exploit DB Packet Storm
254560 9.8 CRITICAL
Network 		php php The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial… CWE-787
 Out-of-bounds Write 		CVE-2017-8923 2024-11-21 12:34 2017-05-13 Show GitHub Exploit DB Packet Storm